SUSE-SU-2016:1733-1
Advisory lineage Upstream: 4 Downstream: 0
Published: 04 Jul 2016, 16:04
Last modified:02 May 2025, 04:05
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
04 Jul 2016, 16:04
Published
Vulnerability first disclosed
02 May 2025, 04:05
Last Modified
Vulnerability information updated
Description
Security update for glibc This update for glibc provides the following fixes: - Increase DTV_SURPLUS limit. (bsc#968787) - Do not copy d_name field of struct dirent. (CVE-2016-1234, bsc#969727) - Fix memory leak in _nss_dns_gethostbyname4_r. (bsc#973010) - Fix stack overflow in _nss_dns_getnetbyname_r. (CVE-2016-3075, bsc#973164) - Fix malloc performance regression from SLE 11. (bsc#975930) - Fix getaddrinfo stack overflow in hostent conversion. (CVE-2016-3706, bsc#980483) - Do not use alloca in clntudp_call. (CVE-2016-4429, bsc#980854) - Remove mtrace.1, now included in the man-pages package. (bsc#967190)
Affected Systems
- suse•glibc&distro=SUSE Linux Enterprise Desktop 12 SP1
< 2.19-38.2
- suse•glibc&distro=SUSE Linux Enterprise Server 12 SP1
< 2.19-38.2
- suse•glibc&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1
< 2.19-38.2
- suse•glibc&distro=SUSE Linux Enterprise Software Development Kit 12 SP1
< 2.19-38.2
References (13)
- https://www.suse.com/support/update/announcement/2016/suse-su-20161733-1/
- https://bugzilla.suse.com/967190
- https://bugzilla.suse.com/968787
- https://bugzilla.suse.com/969727
- https://bugzilla.suse.com/973010
- https://bugzilla.suse.com/973164
- https://bugzilla.suse.com/975930
- https://bugzilla.suse.com/980483
- https://bugzilla.suse.com/980854
- https://www.suse.com/security/cve/CVE-2016-1234
- https://www.suse.com/security/cve/CVE-2016-3075
- https://www.suse.com/security/cve/CVE-2016-3706
- https://www.suse.com/security/cve/CVE-2016-4429